RE: Summarizing Access-lists

From: Jonathan V Hays (jhays@jtan.com)
Date: Sun Nov 23 2003 - 13:24:25 GMT-3

• Next message: Howard C. Berkowitz: "RE: Finally #12534"
• Previous message: Edward Agostinho: "Re: Summarizing Access-lists"
• Maybe in reply to: Edward Agostinho: "Summarizing Access-lists"
• Next in thread: Scott Morris: "RE: Summarizing Access-lists"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

It doesn't matter. Everything is done at the bit level.

-----Original Message-----
From: Edward Agostinho [mailto:edward@ceg.co.za]
Sent: Sunday, November 23, 2003 11:12 AM
To: Jonathan V Hays; ccielab@groupstudy.com
Subject: Re: Summarizing Access-lists

Thanks Jonathan but it still doesn't answer my question or am I
understanding it wrong?

Brian's examples use common /24 subnets....my question is, what if they
are
not common /24 but mixtures of /24, /25, /27 masks. Or doesn't it
matter?

Edward

----- Original Message -----
From: "Jonathan V Hays" <jhays@jtan.com>
To: "'Edward Agostinho'" <edward@ceg.co.za>; <ccielab@groupstudy.com>
Sent: Sunday, November 23, 2003 5:15 PM
Subject: RE: Summarizing Access-lists

> Check out this excellent post from Brian McGahan.
>
> http://www.groupstudy.com/archives/ccielab/200303/msg01685.html
>
>
> -----Original Message-----
> From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf
Of
> Edward Agostinho
> Sent: Sunday, November 23, 2003 9:58 AM
> To: ccielab@groupstudy.com
> Subject: Summarizing Access-lists
>
>
> Hi group
>
> How do we summarize access-lists with different subnet masks.
>
> Let's assume you are requested to summarize the following in the least
> amount
> of lines:
>
> access-list 10 permit 133.6.11.0 0.0.0.127
> access-list 10 permit 135.16.171.0 0.0.0.255
> access-list 10 permit 172.60.51.0 0.0.0.127
> access-list 10 permit 121.15.120.0 0.0.0.31
> access-list 10 permit 112.59.9.0 0.0.0.255
>
> Do I attempt to summarize:
>
> access-list 10 permit 133.6.11.0 0.0.0.127
> access-list 10 permit 172.60.51.0 0.0.0.127
>
> and
>
> access-list 10 permit 135.16.171.0 0.0.0.255
> access-list 10 permit 112.59.9.0 0.0.0.255
>
> and leave
>
> access-list 10 permit 121.15.120.0 0.0.0.31
>
> or do I ignore the masks and do a normal AND and XOR with the network
> portion
> of the addresses?
>
> I know how to summarize them if they all use /24 as the examples given
> by the
> rest of the group but never seen one with different subnet masks?
>
> Thanks
>
> Edward
>
>

• Next message: Howard C. Berkowitz: "RE: Finally #12534"
• Previous message: Edward Agostinho: "Re: Summarizing Access-lists"
• Maybe in reply to: Edward Agostinho: "Summarizing Access-lists"
• Next in thread: Scott Morris: "RE: Summarizing Access-lists"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Fri Dec 12 2003 - 12:29:16 GMT-3